|
|
|
|
|
Total Hits: 8 | Today: 0
|
Author: Anand Narayanaswamy
|
Rating:
|
|
Authentication is the process of validating a user based on a set of credentials such as username, password, and e-mail address. Suppose you own a small Web development company that uses ASP.NET, and you want to give your users a secured area from where they can download or view additional resources such as tutorials. You would have to store crucial user data such as usernames and passwords (preferably in a database such as Microsoft Access or SQL Server) and then authenticate users based on tho...
|
|
|
|
Total Hits: 9 | Today: 0
|
Author: Caleb Sima
|
Rating:
|
|
How secure are your Web applications? Unless you conduct application vulnerability testing throughout the lifespan of your applications, there's no way for you to know about your web application security. That's not good news for your security or regulatory compliance efforts. Companies make significant investments to develop high-performance Web applications so customers can do business whenever and wherever they choose. While convenient, this 24-7 access also invites criminal hackers who seek ...
|
|
|
|
Total Hits: 9 | Today: 0
|
Author: Scott Nelson
|
Rating:
|
|
The key appeal to the enterprise of purchasing portal products is the standards-based frameworks they provide. The common frameworks across provided by (almost) all vendors include navigation, administration, events, and security. Anyone who has built custom applications without these frameworks knows that what initially seems simple (or at least straightforward) will be wrought with many unforeseen pitfalls that lead to missed milestone dates and/or production nightmares. Assembling all of thes...
|
|
|
|
Total Hits: 7 | Today: 0
|
Author: Jason Lefebvre and Robert Lair
|
Rating:
|
|
If you're planning to build an e-commerce site, you'll be pleased to see that ASP.NET makes it easier than ever. Existing controls can be used and extended to add a great deal more functionality than you might expect. In this article, forms-based authentication is used to verify the identity of users and make certain areas of the site, such as the check-out page, inaccessible to unauthorized users. The power and flexibility of validation controls are demonstrated using the CustomValidator contro...
|
|
|
|
Total Hits: 11 | Today: 1
|
Author: Raja
|
Rating:
|
|
In my previous article (http://www.dotnetfunda.com/articles/article114.aspx), I described how to work with forms authentication, that was the basic description about Forms Authentication. In this article, I am going to explain how to Role based security using Forms Authentication....
|
|
|
|
Total Hits: 11 | Today: 1
|
Author: Suprotim Agarwal
|
Rating:
|
|
The ASP.NET Configuration API provides support for encrypting and decrypting configuration sections in web.config. This feature comes extremely handy when you need to hide sensitive information like passwords. In this article, we will explore how to encrypt and decrypt sections of the web.config. We can encrypt the configuration sections by using two built-in providers: DPAPI (Windows Data Protection API) Provider or the RSA provider. The RSA provider (default) uses an RSA key which holds public...
|
|
|
|
Total Hits: 10 | Today: 0
|
Author: Nancy Michell
|
Rating:
|
|
I'm trying to use the managed classes for SQLXML2 from a Web Service. I find when I use "Trusted_Connection=Yes" in my connection setting, Windows NT® security is used, but apparently I'm connected as the local machine account, not the logged-on user account. When attempting to execute my query, I get "Login failed for user 'MyLAN\MyMachine1$'" (my machine name is MyMachine1). I'd like it to use my user account (MyLAN\MyAccountName) instead....
|
|
|
|
Total Hits: 9 | Today: 0
|
Author: Keith Brown
|
Rating:
|
|
New security features are an important improvement in ASP.NET 2.0. These features include membership services that manage a database of user accounts, hashed passwords, a role manager for managing role membership for users, and five new server-side controls that make implementing forms authentication much easier. ASP.NET 2.0 also offers a provider model that gives you complete control over the implementation of the Membership and Role services and cookieless forms authentication. You also get ea...
|
|
|
|
Total Hits: 8 | Today: 0
|
Author: Jeff Prosise
|
Rating:
|
|
Let's face it: every minute of every day, someone, somewhere, is patrolling the Web looking for sites to hack. ASP.NET developers must constantly be on their guard to ensure attempted hacks can't be successful. That means constraining and validating user input, accessing databases securely, storing sensitive data securely, and generally writing secure code that repels rather than accommodates these malevolent hackers....
|
|
|
|
Total Hits: 12 | Today: 0
|
Author: Tim Ewald and Keith Brown
|
Rating:
|
|
ASP.NET is a flexible and extensible framework for server-side HTTP programming. While most people think of ASP.NET in terms of pages served, there is a lower-level infrastructure sitting beneath this page model. The underlying plumbing is based on a pipeline of app, module, and handler objects. Understanding how this pipeline works is key if you want to get the most out of ASP.NET as an HTTP server platform, while making your process more efficient, and keeping your server secure. This article ...
|
|
|
|
Total Hits: 13 | Today: 0
|
Author: Jeff Prosise
|
Rating:
|
|
Forms authentication is one of the most compelling and useful new features of ASP.NET. It enables developers to declaratively specify which files on their site can be accessed and by whom, and allows identification of a login page. When an unauthenticated user attempts to retrieve a page protected by forms authentication, ASP.NET automatically redirects them to the login page and asks them to identify themselves. Included here is an overview of forms authentication and what you need to know to p...
|
|
|
|
Total Hits: 9 | Today: 0
|
Author: Jeff Prosise
|
Rating:
|
|
ASP.NET and Microsoft Internet Information Services (IIS) work together to make building secure Web sites a breeze. But to do it right, you have to know how the two interrelate and what options they provide for securing access to a Web site's resources. This article, the first in a two-part series, explains the ABCs of Web security as seen through the eyes of ASP.NET and includes a hands-on tutorial demonstrating Windows authentication and ACL authorizations. A range of security measures and aut...
|
|
|
|
|
|
